[ejabberd] ejabberd 1.1.1 LDAP timeout sorrows

Simon Morris simon.morris at cmtww.com
Mon Sep 18 14:18:53 MSD 2006


Hello all,

I've been testing ejabberd 1.1.1 ( The precompiled generic GNU/Linux version from the website ) on SUSE 10.0.

It all works great and it's proven to be a lot better in terms of features and reliability than the OS X Jabber server it's going
to replace.

My only last issue is that the LDAP authentication module keeps timing
out and rejecting user logon requests. When I restart the server and do
some testing LDAP (Active Directory users) can logon fine.

If I leave it for an hour or so the logon attempts fail.

In my ejabberd.log file I get...

****

=ERROR REPORT==== 2006-09-17 21:56:03 ===
** State machine <0.10535.0> terminating
** Last event in was {xmlstreamelement,
                         {xmlelement,"auth",
                                     [{"xmlns",

"urn:ietf:params:xml:ns:xmpp-sasl"},
                                      {"mechanism","PLAIN"}],
                                     [{xmlcdata,

<<65,71,78,116,100,71,70,107,98,87,108,117,65,70,78,48,89,88,74,112,98,109,99,103,89,88,81,103,100,71,104,108,73,72,78,108,89,88,77,117>>}]}}
** When State == wait_for_feature_request
**      Data  == {state,{sslsocket,6,<0.10534.0>},
                        <0.10536.0>,
                        ssl,
                        "3696948738",
                        {sasl_state,"jabber",
                                    "talk.group-united.com",
                                    [],
                                    #Fun<ejabberd_c2s.1.114093548>,
                                    #Fun<ejabberd_c2s.2.66069937>,
                                    undefined,
                                    undefined},
                        c2s,
                        none,
                        false,
                        false,
                        false,
                        false,

[{certfile,"/opt/ejabberd-1.1.1/conf/server.pem"}],
                        false,
                        undefined,
                        [],
                        "talk.group-united.com",
                        [],
                        undefined,
                        {0,nil},
                        {0,nil},
                        {0,nil},
                        {0,nil},
                        undefined,
                        undefined,
                        undefined,
                        false,
                        none,
                        []}
** Reason for termination =
** {timeout,{gen_fsm,sync_send_event,
                     ['eldap_ejabberd_talk.group-united.com',
                      {search,{eldap_search,
                                  wholeSubtree,
                                  "dc=global,dc=network",
                                  {equalityMatch,
                                      {'AttributeValueAssertion',
                                          "sAMAccountName",
                                          "cmtadmin"}},
                                  [],
                                  false,
                                  0}}]}}
lon0smtp01:/opt/ejabberd-1.1.1/logs #

*****

The LDAP server is an Active Directory LDAP server running on Windows
2003. There is a Cisco PIX firewall between the Jabber server and the
LDAP server.

Is LDAP timeouts a common problem with this module.

Thanks

~sm
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.jabber.ru/pipermail/ejabberd/attachments/20060918/92c7b922/attachment.pgp


More information about the ejabberd mailing list